Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/89157b51-a2e4-4030-914a-ace9b05fcf4a.roa
File: 89157b51-a2e4-4030-914a-ace9b05fcf4a.roa (raw, json)
Hash identifier: PvmrGKtpjWV6XixPWJ33M4jNt3tV5xpxzwq9LciWero=
Subject key identifier: 51:31:2C:8D:8D:9B:04:45:96:66:FB:29:42:DA:1C:AC:9D:6A:7A:CD
Certificate issuer: /CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Certificate serial: 578348219A225AF4BA51F1E5B9EC7480B29B3BB5
Authority key identifier: 91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/89157b51-a2e4-4030-914a-ace9b05fcf4a.roa
Signing time: Fri 24 Feb 2023 00:00:00 +0000
ROA not before: Fri 24 Feb 2023 00:00:00 +0000
ROA not after: Mon 27 Feb 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:83:48:21:9a:22:5a:f4:ba:51:f1:e5:b9:ec:74:80:b2:9b:3b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611
Validity
Not Before: Feb 24 00:00:00 2023 GMT
Not After : Feb 27 23:59:59 2023 GMT
Subject: serialNumber=fbf1cc0e4baf72fcbe52c3ec664f1b97fdc35216c1e5595606974a27360f9790, CN=6ae4e567-6348-4c4f-98a8-0422c4c52ff3, OU=Amazon RPKI, O=Amazon.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1c:42:eb:74:83:0b:84:e8:3b:7f:6d:53:78:
18:71:c5:cf:65:ca:0f:61:48:d9:df:6f:57:a1:e4:
9f:f4:28:b7:3b:b0:3d:8c:c3:7f:66:8e:39:19:33:
c0:ef:1c:c8:01:c1:23:50:4e:50:b1:ee:6d:05:b1:
6c:c9:1e:1f:4b:cc:7a:98:a8:b1:c3:e9:76:15:53:
e6:6e:f8:37:24:8e:da:99:df:86:9c:f6:ba:95:28:
00:71:62:ae:a8:d5:b8:03:83:d0:bc:55:aa:bc:23:
15:b9:28:7b:32:0a:f5:ab:96:81:68:fb:1f:3f:ad:
2a:d2:e5:db:b9:90:29:35:8b:4f:e2:7e:51:1b:de:
66:05:56:f6:08:ed:c7:fc:4f:d3:59:87:0d:fb:8f:
ec:ef:28:aa:33:57:0d:9a:1d:40:d9:b9:2a:11:d7:
b9:4a:66:35:ae:52:6e:00:81:71:05:53:33:eb:5c:
6e:15:55:97:d4:d3:3a:8c:d1:ff:dd:2b:99:fa:fc:
2c:e6:2a:6b:57:90:a8:45:5e:4a:f7:7c:63:87:26:
2b:61:79:a9:e4:8b:97:e7:09:40:4f:5e:4a:e7:a4:
3f:12:68:4b:9b:79:e2:ad:70:d9:7b:dc:2d:50:44:
39:5c:54:2d:9b:db:7b:da:35:a3:65:82:cf:a6:60:
57:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:31:2C:8D:8D:9B:04:45:96:66:FB:29:42:DA:1C:AC:9D:6A:7A:CD
X509v3 Authority Key Identifier:
keyid:91:44:ED:C7:A4:0E:E9:90:B7:FA:36:6F:F6:E1:7D:79:AD:C4:83:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/73f21c2b-8823-4c24-b25b-43c80cb6d1bb/278aab878f2831bb1823b58794b092d86fb1d7a0f74e281611.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/89157b51-a2e4-4030-914a-ace9b05fcf4a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b68a32ee-455d-483a-943d-1a5be748bfea/4bb8ae5c-124c-42f3-87fb-4f34e74e3da2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:1a:28:5c:d6:4c:03:1b:1b:8a:2c:d7:7b:72:19:a1:6f:c0:
03:17:e8:a1:cf:69:f9:ee:d9:97:08:02:fc:8f:9f:7d:7f:61:
d2:f0:05:9f:75:46:2c:27:22:ef:75:ed:ab:d1:0f:7f:f9:5a:
52:5d:c2:e3:45:31:77:26:d9:84:0f:3f:ce:0e:00:fe:52:b6:
95:b8:70:43:c7:6b:95:f2:24:de:74:29:85:ac:5c:30:94:69:
8b:13:b6:57:b9:39:3c:5d:2d:a2:04:57:77:2e:f5:02:26:04:
53:29:0f:01:d8:f7:40:03:8a:bf:9c:ed:ca:5c:49:31:89:28:
cc:a5:89:33:dd:40:61:aa:8f:d4:11:81:02:4c:cd:a4:65:7a:
64:db:9b:15:a2:78:22:a8:38:f7:e9:a4:1b:37:96:71:19:90:
2f:29:22:ff:14:82:6d:83:36:08:f9:b8:4e:55:ac:7b:32:36:
1c:e0:ce:36:36:14:8d:2a:62:1a:89:f7:0c:fd:af:07:91:b6:
41:fb:ce:b1:b9:c7:96:e6:6d:de:db:51:f5:5e:bd:9e:5a:fa:
7d:8a:41:3c:31:75:15:6b:62:64:9d:a4:2f:bf:91:a7:99:2e:
e6:16:ad:8b:28:a2:d7:0b:ac:eb:f3:1e:fe:e0:7e:0c:5d:aa:
d6:85:64:04
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUV4NIIZoiWvS6UfHluex0gLKbO7UwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI4MzFiYjE4MjNiNTg3OTRiMDkyZDg2
ZmIxZDdhMGY3NGUyODE2MTEwHhcNMjMwMjI0MDAwMDAwWhcNMjMwMjI3MjM1OTU5
WjCBpTFJMEcGA1UEBRNAZmJmMWNjMGU0YmFmNzJmY2JlNTJjM2VjNjY0ZjFiOTdm
ZGMzNTIxNmMxZTU1OTU2MDY5NzRhMjczNjBmOTc5MDEtMCsGA1UEAxMkNmFlNGU1
NjctNjM0OC00YzRmLTk4YTgtMDQyMmM0YzUyZmYzMRQwEgYDVQQLEwtBbWF6b24g
UlBLSTETMBEGA1UEChMKQW1hem9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALAcQut0gwuE6Dt/bVN4GHHFz2XKD2FI2d9vV6Hkn/QotzuwPYzD
f2aOORkzwO8cyAHBI1BOULHubQWxbMkeH0vMepioscPpdhVT5m74NySO2pnfhpz2
upUoAHFirqjVuAOD0LxVqrwjFbkoezIK9auWgWj7Hz+tKtLl27mQKTWLT+J+URve
ZgVW9gjtx/xP01mHDfuP7O8oqjNXDZodQNm5KhHXuUpmNa5SbgCBcQVTM+tcbhVV
l9TTOozR/90rmfr8LOYqa1eQqEVeSvd8Y4cmK2F5qeSLl+cJQE9eSuekPxJoS5t5
4q1w2XvcLVBEOVxULZvbe9o1o2WCz6ZgV3kCAwEAAaOCAr4wggK6MB0GA1UdDgQW
BBRRMSyNjZsERZZm+ylC2hysnWp6zTAfBgNVHSMEGDAWgBSRRO3HpA7pkLf6Nm/2
4X15rcSDlzAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggr
BgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4t
cnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1
NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzczZjIxYzJiLTg4MjMt
NGMyNC1iMjViLTQzYzgwY2I2ZDFiYi8yNzhhYWI4NzhmMjgzMWJiMTgyM2I1ODc5
NGIwOTJkODZmYjFkN2EwZjc0ZTI4MTYxMS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGO
MIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6
b25hd3MuY29tL3ZvbHVtZS9iNjhhMzJlZS00NTVkLTQ4M2EtOTQzZC0xYTViZTc0
OGJmZWEvODkxNTdiNTEtYTJlNC00MDMwLTkxNGEtYWNlOWIwNWZjZjRhLnJvYTCB
lQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I2OGEzMmVlLTQ1NWQtNDgzYS05NDNk
LTFhNWJlNzQ4YmZlYS80YmI4YWU1Yy0xMjRjLTQyZjMtODdmYi00ZjM0ZTc0ZTNk
YTIuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAIwaKFzWTAMbG4os
13tyGaFvwAMX6KHPafnu2ZcIAvyPn31/YdLwBZ91RiwnIu917avRD3/5WlJdwuNF
MXcm2YQPP84OAP5StpW4cEPHa5XyJN50KYWsXDCUaYsTtle5OTxdLaIEV3cu9QIm
BFMpDwHY90ADir+c7cpcSTGJKMyliTPdQGGqj9QRgQJMzaRlemTbmxWieCKoOPfp
pBs3lnEZkC8pIv8Ugm2DNgj5uE5VrHsyNhzgzjY2FI0qYhqJ9wz9rweRtkH7zrG5
x5bmbd7bUfVevZ5a+n2KQTwxdRVrYmSdpC+/kaeZLuYWrYsootcLrOvzHv7gfgxd
qtaFZAQ=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:48 2023 by rpki-client on console-fra.rpki-client.org